Docker

An open-source script that performs automated security assessments of Docker containers and hosts against CIS Docker Benchmark standards.

A reference guide providing Docker commands and concepts for containerized application development and deployment.

TANNER is a remote data analysis service that evaluates HTTP requests and generates responses for SNARE honeypots while emulating application vulnerabilities.

A Docker security vulnerability where disabling inter-container communication (ICC) fails to block raw ethernet frames, allowing unexpected data transfer between containers via raw sockets.

gVisor is a Go-based application kernel that provides enhanced container isolation by implementing Linux system calls and limiting host kernel exposure through its runsc OCI runtime.

Margarita Shotgun is a Python tool that enables remote memory acquisition from target systems through command line interface, supporting Linux distributions and other operating systems via Docker containers.

A deliberately vulnerable Java web application designed for educational purposes to teach web application security concepts and common vulnerabilities.

Haaukins is an automated virtualization platform that provides hands-on cybersecurity education through capture the flag exercises in controlled vulnerable environments.

Container image definitions that create standardized testing environments for software applications with consistent dependencies and configurations.

Toolkit for post-mortem analysis of Docker runtime environments using forensic HDD copies.

SCOT is a cybersecurity incident tracking and management platform that enables security operations centers to document, analyze, and coordinate responses to security events through collaborative workflows.

LinuxKit is a toolkit for building custom minimal, immutable Linux distributions with secure defaults for running containerized applications like Docker and Kubernetes.

A web collaborative platform for incident responders to share technical details during investigations, shipped in Docker containers for easy installation and upgrades.

A Docker container that bundles preinstalled AWS security tools for streamlined security operations and assessments in AWS environments.

Docker file for building Androguard dependencies with an optional interactive shell environment.

Multi-honeypot platform with various honeypots and monitoring tools.

A collection of vulnerable web applications containing command injection flaws designed to test and evaluate detection and exploitation tools like commix.

A command-line tool that extracts manifest and configuration data from Docker registry images for security analysis and reconnaissance purposes.

A comprehensive web application security testing solution that offers built-in vulnerability assessment and management, as well as integration options with popular software development tools.

Deliberately vulnerable CI/CD environment with 11 challenges to practice security.

A Python-based Docker security audit tool that performs CIS benchmark assessments with customizable profiles and JSON reporting capabilities.

A static analysis tool that detects Common Weakness Enumerations (CWEs) in ELF binaries across multiple CPU architectures using Ghidra-based disassembly and various analysis techniques.

A cross-platform post-exploitation HTTP/2 Command & Control framework designed specifically for testing and exploiting containerized environments including Docker and Kubernetes.

A command-line tool that scans websites to detect publicly known security vulnerabilities in frontend JavaScript libraries using Snyk's vulnerability database.